$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa File: 854367ff-45b7-4925-99a1-97b01f4fabe8.roa (raw, json) Hash identifier: Q/uEuwRIvksDUbnS1lEb3MD67OOoX38/9axyYKcKetw= Subject key identifier: 8B:33:D6:AD:5E:64:81:A3:E3:85:8D:9D:96:9A:2B:75:B2:60:B0:AB Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 07BAC63E7E807EA3DE03DEBA4B22A1F8734C69AF Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa Signing time: Fri 01 May 2026 00:00:37 +0000 ROA not before: Fri 01 May 2026 00:00:37 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 8987 IP address blocks: 216.221.166.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 May 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ba:c6:3e:7e:80:7e:a3:de:03:de:ba:4b:22:a1:f8:73:4c:69:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: May 1 00:00:37 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=8c5f1f2a75f4270bc980ec3b44c583a7dcfce510e28ab5703159bf7a3f537cc1, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d6:1d:82:a7:97:b2:1e:49:85:c6:f3:e5:4d: 3b:e3:60:a7:31:88:98:7e:66:50:f1:21:3c:a4:3d: 71:83:ef:52:30:0f:25:42:63:54:1e:c1:d8:5b:d2: 11:a9:36:76:66:0b:ab:6a:7e:10:8d:54:c3:93:37: 53:db:65:3d:00:87:f0:89:db:68:c1:4b:da:36:7d: 43:34:df:4f:87:23:87:e2:ea:4e:41:8e:e5:57:1b: 9b:a7:26:03:79:63:0e:9d:39:0a:8b:9d:1a:5a:77: 4c:4c:3f:c7:44:c0:6a:af:ea:81:b0:f9:c2:70:f7: 05:3d:4a:ab:2d:04:f5:70:09:ac:34:53:d4:43:60: d1:02:14:41:5e:42:c4:3c:3c:ff:88:dd:f8:0c:51: e7:97:6e:65:61:e8:a9:a6:b4:d7:10:81:cd:b3:99: b3:30:2d:91:bc:11:62:d0:56:df:28:31:3a:f4:a6: 57:91:05:c1:a4:9f:6d:1d:ae:d0:77:c0:47:f0:b9: b6:c5:e0:ae:98:db:82:43:38:77:39:74:7c:36:25: db:46:ff:92:5b:c6:e7:66:2a:de:59:83:0a:b0:98: 8d:53:41:55:1c:2d:ae:96:36:bf:95:54:3c:47:a8: c2:cb:be:5e:f0:4e:c3:dc:21:7f:03:b1:b8:66:d6: 98:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:33:D6:AD:5E:64:81:A3:E3:85:8D:9D:96:9A:2B:75:B2:60:B0:AB X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/854367ff-45b7-4925-99a1-97b01f4fabe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.166.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:14:7c:2a:b8:b7:7e:f7:2f:c1:a0:d4:24:b0:ca:fe:65:c5: d1:0d:c1:d5:f4:0f:d5:76:b6:0a:04:1d:c3:01:1b:38:06:ae: 36:08:57:19:27:51:5d:e6:e5:1c:4d:90:ce:06:cb:92:9c:1f: 53:f1:29:31:39:b6:36:87:21:f7:9f:26:88:9f:1a:e1:3f:96: 8c:68:ea:16:12:79:16:c9:88:0b:7f:25:eb:d9:ed:f7:1d:6d: db:20:b0:73:26:2c:1b:fe:31:bd:59:89:7c:2a:26:dd:1b:7d: 5c:f3:4f:70:ac:5c:a8:58:c1:53:cb:73:bb:98:f9:70:1b:38: 84:fe:fa:97:ba:b5:7d:03:94:5d:da:38:84:51:71:8b:cc:b3: 2f:42:ec:50:36:f2:25:6d:21:d2:fa:97:33:6e:29:38:50:b8: 67:ec:03:9e:7d:cc:af:62:58:60:5e:31:57:35:3d:64:fa:47: 49:70:81:3f:28:0a:d4:d3:0f:62:96:16:2d:2b:81:62:34:63: 6c:ee:d6:f9:98:db:fc:e4:0a:a4:9c:b7:ff:ef:05:2a:f0:f3: 31:70:7f:00:96:90:ba:a8:f4:db:36:42:e5:38:04:8d:97:7a: b5:d2:3d:68:02:01:b6:58:17:89:7c:7a:e0:f7:f7:05:cd:8d: ff:d2:43:e1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB7rGPn6AfqPeA966SyKh+HNMaa8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjYwNTAxMDAwMDM3WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzVmMWYyYTc1ZjQyNzBiYzk4MGVjM2I0NGM1ODNhN2Rj ZmNlNTEwZTI4YWI1NzAzMTU5YmY3YTNmNTM3Y2MxMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC31h2Cp5eyHkmFxvPlTTvjYKcxiJh+ZlDxITykPXGD71Iw DyVCY1Qewdhb0hGpNnZmC6tqfhCNVMOTN1PbZT0Ah/CJ22jBS9o2fUM030+HI4fi 6k5BjuVXG5unJgN5Yw6dOQqLnRpad0xMP8dEwGqv6oGw+cJw9wU9SqstBPVwCaw0 U9RDYNECFEFeQsQ8PP+I3fgMUeeXbmVh6KmmtNcQgc2zmbMwLZG8EWLQVt8oMTr0 pleRBcGkn20drtB3wEfwubbF4K6Y24JDOHc5dHw2JdtG/5JbxudmKt5ZgwqwmI1T QVUcLa6WNr+VVDxHqMLLvl7wTsPcIX8Dsbhm1pidAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUizPWrV5kgaPjhY2dlpordbJgsKswHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzg1NDM2N2ZmLTQ1YjctNDkyNS05OWExLTk3YjAxZjRmYWJlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHY3aYwDQYJKoZIhvcNAQELBQADggEBAFwUfCq4t373L8Gg1CSwyv5lxdEN wdX0D9V2tgoEHcMBGzgGrjYIVxknUV3m5RxNkM4Gy5KcH1PxKTE5tjaHIfefJoif GuE/loxo6hYSeRbJiAt/JevZ7fcdbdsgsHMmLBv+Mb1ZiXwqJt0bfVzzT3CsXKhY wVPLc7uY+XAbOIT++pe6tX0DlF3aOIRRcYvMsy9C7FA28iVtIdL6lzNuKThQuGfs A559zK9iWGBeMVc1PWT6R0lwgT8oCtTTD2KWFi0rgWI0Y2zu1vmY2/zkCqSct//v BSrw8zFwfwCWkLqo9Ns2QuU4BI2XerXSPWgCAbZYF4l8euD39wXNjf/SQ+E= -----END CERTIFICATE-----Generated at Sun May 3 16:52:24 2026 by rpki-client